Cross-platform Wirenet Trojan targets Mac and Linux users
Posted on 30.08.2012
Since Windows users constitute the majority of computer users around the world, most malware is designed to target that particular OS and software made for it. Still, every now and then, malware that eschews that oft trodden route turns up.

Researchers from Russian security company Doctor Web have recently unearthed a password-stealing backdoor Trojan that targets specifically Linux and Mac OS X users.

Dubbed Wirenet, the Trojan records passwords entered in Firefox, Chrome, Chromium and Opera (but seemingly not Safari) and passwords stored by open source, cross-platform applications such as email client Thunderbird, Internet suite SeaMonkey, and IM client Pidgin.

It communicates with its control server located at 212.7.208.65 by using the Advanced Encryption Standard, and delivers the goods to it.

The researchers are still in the dark as to the method used for spreading the malware, so they keep investigating. They consider Wirenet to be the first ever Trojan developed exclusively for targeting OS X and Linux users.






Spotlight

Operation Pawn Storm: Varied targets and attack vectors, next-level spear-phishing tactics

Posted on 23 October 2014.  |  Targets of the spear phishing emails included staff at the Ministry of Defense in France, in the Vatican Embassy in Iraq, military officials from a number of countries, and more.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Fri, Oct 24th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //